Best Buy reportedly pulling Kaspersky software from shelves

YLAP · 2017-09-10T09:02:45.000Z

I thought it might be interesting

Eddy · 2017-09-10T09:12:13.000Z

Typically for those stupid Americans.
We are good, they are bad.
When are they gonna stop this childish behavior…

All major av vendors are working together with governments.
There is nothing wrong with it.
Look at how much customers you will get if you can sell your product to a government.

polonus · 2017-09-10T20:43:56.000Z

Was not this because of some specific detections by Kaspersky Lab’s Global Research and Analysis Team, like with stuxnet etc.?
Kaspersky recently flagged CIA backdoors worked through a Microsoft hole known as “PsSetLoadImageNotifyRoutin”, an unpatched “feature” that prevents antivirus software from finding computer virus malware…Essentially, malware can use the above API to trick the OS into giving malware scanners other files – such as benign executables – to inspect rather than their own malicious code. This would allow software nasties to evade antivirus packages. (Source info: https://www.theregister.co.uk/2017/09/08/microsoft_says_it_wont_fix_kernel_flaw_its_not_a_security_issue_apparently/ )

This is not a reputation thing. Could it also be politically driven, because of the present demonization of Russia???

polonus

polonus · 2017-09-12T09:24:47.000Z

Remember this also was irritating to those parties that (il)legaly try to audiospy on you (again CIA etc.), and normally in Microsoft you could not turn this off (eavesdropping through even taped off microphones), and Microsoft did not offer such a solution as Kaspersky’s did: https://www.kaspersky.com/blog/microphone-patent/17376/

Again the red herring here was to accuse Kaspersky to work hand in foot with the Russian homebase and declare the software a threat to USA.

polonus

YLAP · 2017-09-13T19:23:25.000Z

The story continues: Kaspersky software banned at U.S. federal agencies amid concerns of Kremlin ties

https://www.androidcentral.com/kaspersky-software-banned-us-federal-agencies-amid-concerns-kremlin-ties

polonus · 2017-09-13T20:24:22.000Z

And here one can read why they actually should not do this:

https://www.wired.com/story/why-the-us-government-shouldnt-ban-kaspersky-security-software/

Again we start to wonder why the world again becomes split in two… :-[

polonus

P.S. We have to admit that Mainland China banned Kaspersky’s earlier: http://www.thewhir.com/web-hosting-news/symantec-kaspersky-labs-banned-china-government-obliged-choose-domestic-security-software

Asyn · 2017-09-15T08:38:20.000Z

DHS Statement on the Issuance of Binding Operational Directive 17-01
https://www.dhs.gov/news/2017/09/13/dhs-statement-issuance-binding-operational-directive-17-01

DavidR · 2017-09-15T09:41:53.000Z

Asyn post:7:

DHS Statement on the Issuance of Binding Operational Directive 17-01
https://www.dhs.gov/news/2017/09/13/dhs-statement-issuance-binding-operational-directive-17-01

When I first heard this, I thought a joke, some Politico with little or no knowledge of how Government Departments work, the wheels grind exceedingly slow. To expect them to do anything in 90 days is wishful thinking, especially when you are talking of computer systems. All sorts of committees, focus groups, etc get together to identify who and how many of their systems are effected. Then they have to decide what they are going to do about it, e.g. what will replace it.

Now procurement has to get in in the act (who is going to pay for the new software) followed by the IT Department to plan the schedule remove the offending software, install the replacement and monitor its performance.

90 days Ha. Someone at the top says something and they believe that is it, sorted.

Asyn · 2017-10-06T04:55:17.000Z

Russian Hackers Stole NSA Tools From Contractor Who Used Kaspersky Software
https://www.nbcnews.com/news/investigations/russian-hackers-stole-nsa-tools-contractor-who-used-kaspersky-software-n808101

polonus · 2017-10-06T10:40:35.000Z

Hi Asyn,

And here you hear the story the other way around that Russian malware was acquired by CIA: https://www.rt.com/viral/383867-wikileaks-cia-grasshopper-vault7/

Very hard to establish what is real and what is fake news in such matters. Take all news com granu salis ;D

“It is just like out on the black and white checkered floor. The tiles there are white (good) and black (evil),
as these are aspects of all that happens in creation, you are either standing in the light or in the shadows)”.

polonus

polonus · 2017-10-06T19:19:01.000Z

Could be Kaspersky detects far too much on governmental malcode schemes, example:

https://kasperskycontenthub.com/wp-content/uploads/sites/43/vlpdfs/unveilingthemask_v1.0.pdf
&
https://usa.kaspersky.com/about/press-releases/2017_kaseprsky-lab-survey-one-in-four-hide-cybersecurity-incidents-from-their-employers

polonus

Asyn · 2017-10-11T09:11:31.000Z

How Israel Caught Russian Hackers Scouring the World for U.S. Secrets
https://www.nytimes.com/2017/10/10/technology/kaspersky-lab-israel-russia-hacking.html

polonus · 2017-10-11T12:05:18.000Z

Pass the pop-corn, Asyn, please and read why av is just a plaster to stick on this inherent insecurity by default:
https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/313ae481-3088-e711-80e2-000d3a32fc99

Symantec drew it’s conclusions: http://www.reuters.com/article/us-usa-cyber-russia-symantec/exclusive-symantec-ceo-says-source-code-reviews-pose-unacceptable-risk-idUSKBN1CF2SB

polonus

Asyn · 2017-12-03T16:21:50.000Z

Kaspersky Labs: Warning over Russian anti-virus software
http://www.bbc.co.uk/news/uk-42202191
http://www.bbc.co.uk/news/uk-42209489

polonus · 2017-12-03T22:10:23.000Z

“It must be those d*rned Ruzzians” ;D

Kaspersky’s Lab servers were hacked and PN*WED for months back in 2015 by certain state actors,
long before the new cold cyberwar between USA-Russia broke out or was even thought up.

It seems all parties long have forgotten about these accidents.

Why certain Anglo-American parties still have some axes to grind against Kaspersky’s is unclear,
but it completely fits the scheme of recent persistent boycot policies,
that are being relentlessly continued against the Russian Federation.

polonus

polonus · 2017-12-08T17:19:39.000Z

On the StrongPity Waterhole Attacks, spyware developed in Italy

ESET now warns without naming the spyware using countries
(Turkey uses it and also on their citizins living in the Netherlands for instance):
https://www.welivesecurity.com/2017/12/08/strongpity-like-spyware-replaces-finfisher/

Kaspersky does a better job and names countries that abuse: https://securelist.com/on-the-strongpity-waterhole-attacks-targeting-italian-and-belgian-encryption-users/76147/

Is that one of the reasons why Kaspersky is frowned upon on this side of the global hemisphere?

polonus

polonus · 2017-12-13T10:56:19.000Z

Now dragged in the US trash-can:

Updated President Donald Trump has signed the National Defense Authorization Act for 2018, which includes a ban on products from Kaspersky Lab running in US government agencies.

Section 1634 of the law specifies that:

No department, agency, organization, or other element of the Federal Government may use, whether directly or through work with or on behalf of another department, agency, organization, or element of the Federal Government, any hardware, software, or services developed or provided, in whole or in part, by—

(1) Kaspersky Lab (or any successor entity);

(2) any entity that controls, is controlled by, or is under common control with Kaspersky Lab; or

(3) any entity of which Kaspersky Lab has majority ownership.

Any comments?

polonus

RejZoR · 2017-12-19T15:09:42.000Z

What baffles me about all this drama around Kaspersky is the fact that literally NO ONE has any clue what they are talking about (including most “tech” sites) and every normie is just jumping on the bandwagon of hating Kaspersky when Kaspersky literally did what was their job. Interception, collection and analysis of malware and/or hack tools which is done through cloud systems used by basically all AV companies these days. The fact some NSA contractor cocked it up and getting the tools intercepted by Kaspersky somehow makes it a Kaspersky’s problem. How? They just did their job. They don’t differentiate between NSA and actual criminals which may just as well be one and the same. They just gather intelligence to protect their users.

YLAP · 2017-12-21T12:54:14.000Z

Just short newsflash about the Kaspersky case. In Lithuania Kaspersky Lab software was named as potential threat to the national security and it was ordered for all government institutions using it to relpace these solutions to other, secure software as soon as possible.

RejZoR · 2017-12-21T13:14:59.000Z

Everyone panicking based on literal hoax so to speak. How can whole world be so utterly clueless is beyond me.

Announcements